CVE-2021-46179

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 22, 2023
Updated: Aug 25, 2023
CWE ID 617

Summary

CVE-2021-46179 is a Reachable Assertion vulnerability affecting upx before version 4.0.0. This issue permits attackers to trigger a denial of service by providing crafted files to the readx function. The vulnerability arises due to an assertion that can be bypassed, leading to unexpected behavior and system instability. The exploitation of this vulnerability does not require user interaction or elevated privileges, increasing the risk for potential attacks. Upgrading to a patched version of upx is strongly recommended to mitigate this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share